21051.0.000Introduced in HouseNIST Small Business Cybersecurity Act of 2017

This bill amends the National Institute of Standards and Technology Act to require the National Institute of Standards and Technology (NIST) to consider small businesses when it facilitates and supports the development of voluntary, consensus-based, industry-led guidelines and procedures to cost-effectively reduce cyber risks to critical infrastructure.

NIST must consult with other federal agencies to disseminate, and publish on its website, standard and method resources that small business may use voluntarily to help identify, assess, manage, and reduce their cybersecurity risks. The resources must be: (1) technology-neutral, (2) based on international standards to the extent possible, (3) able to vary with the nature and size of the implementing small business and the sensitivity of the data collected or stored on the information systems, (4) capable of promoting awareness of third-party stakeholder relationships to assist small businesses in mitigating common cybersecurity risks, and (5) consistent with the national cybersecurity awareness and education program under the Cybersecurity Enhancement Act of 2014.

Other federal agencies may elect to publish the resources on their own websites.

]]>Introduced in House2017-04-202017-05-04T22:03:54Z2017-04-20T04:00:00Z36Passed House amendedNIST Small Business Cybersecurity Act

(Sec. 2) This bill amends the National Institute of Standards and Technology Act to require the National Institute of Standards and Technology (NIST) to consider small businesses when it facilitates and supports the development of voluntary, consensus-based, industry-led guidelines and procedures to cost-effectively reduce cyber risks to critical infrastructure.

NIST must consult with other federal agencies to disseminate, and publish on its website, standard and method resources that small business may use voluntarily to help identify, assess, manage, and reduce their cybersecurity risks. The resources must: (1) include case studies of practical application, (2) be based on international standards to the extent possible, (3) be able to vary with the nature and size of the implementing small business and the sensitivity of the data collected or stored on the information systems, (4) be capable of promoting awareness of third-party stakeholder relationships to assist small businesses in mitigating common cybersecurity risks, and (5) be consistent with the national cybersecurity awareness and education program under the Cybersecurity Enhancement Act of 2014.

Other federal agencies may elect to publish the resources on their own websites.

]]>Passed House amended2017-10-112017-11-02T18:23:02Z2017-10-11T12:37:09Z[Congressional Record Volume 163, Number 68 (Thursday, April 20, 2017)]From the Congressional Record Online through the Government Publishing Office [www.gpo.gov]By Mr. WEBSTER of Florida:H.R. 2105.Congress has the power to enact this legislation pursuantto the following:Article I, Section 8, Clause 18:The Congress shall have power to make all Laws which shallbe necessary and proper for carrying into Execution theforegoing Powers, and all other Powers vested by thisConstitution in the Government of the United States, or inany Department of Officer thereof.[Page H2812]]]>Science, Technology, CommunicationsComputer security and identity theftGovernment information and archivesInfrastructure developmentSmall business1111111111112017-10-16sscm00Commerce, Science, and Transportation Committee0SenateReceived in the Senate and Read twice and referred to the Committee on Commerce, Science, and Transportation.IntroReferral2House floor actionsFloor14:20:33H383102017-10-11Motion to reconsider laid on the table Agreed to without objection.2House floor actionsFloorhttps://www.congress.gov/congressional-record/volume-163/house-section/page/H7936-7937H7936-793714:20:31H373002017-10-11On motion to suspend the rules and pass the bill, as amended Agreed to by voice vote. (text: CR H7936-7937)9Library of CongressFloorhttps://www.congress.gov/congressional-record/volume-163/house-section/page/H7936-7937H7936-793714:20:3180002017-10-11Passed/agreed to in House: On motion to suspend the rules and pass the bill, as amended Agreed to by voice vote.(text: CR H7936-7937)2House floor actionsFloorhttps://www.congress.gov/bill/115th-congress/house-bill/2105H.R. 210513:56:09H8D0002017-10-11DEBATE - The House proceeded with forty minutes of debate on H.R. 2105.2House floor actionsFloorhttps://www.congress.gov/congressional-record/volume-163/house-section/page/H7936-7939H7936-793913:56:05H300002017-10-11Considered under suspension of the rules. (consideration: CR H7936-7939)2House floor actionsFloor13:55:19H303002017-10-11Mr. Webster (FL) moved to suspend the rules and pass the bill, as amended.2017-05-02hssy00Science, Space, and Technology Committee1House committee actionsOrdered to be Reported (Amended) by Voice Vote.Committee2017-05-02hssy00Science, Space, and Technology Committee1House committee actionsCommittee Consideration and Mark-up Session Held.Committee2House floor actionsIntroReferralhssy00Science, Space, and Technology CommitteeH111002017-04-20Referred to the House Committee on Science, Space, and Technology.9Library of CongressIntroReferralIntro-H2017-04-20Introduced in House9Library of CongressIntroReferral10002017-04-20Introduced in House111HShort Titles as Passed HouseShort Titles House of RepresentativesHouseNIST Small Business Cybersecurity ActShort Titles as IntroducedNIST Small Business Cybersecurity Act of 2017Official Title as IntroducedTo require the Director of the National Institute of Standards and Technology to disseminate guidance to help reduce small business cybersecurity risks, and for other purposes.Display TitleNIST Small Business Cybersecurity ActH(Extracted from GPO) Short Titles as Passed HouseHouseNIST Small Business Cybersecurity Act(Extracted from GPO) Short Titles as IntroducedNIST Small Business Cybersecurity Act of 2017Science, Technology, CommunicationsHouse2017-10-16Received in the Senate and Read twice and referred to the Committee on Commerce, Science, and Transportation.HR2017-04-202018-09-19T12:42:08ZNIST Small Business Cybersecurity ActW000806Daniel78802002W000806R11FLRep. Webster, Daniel [R-FL-11]Webster115H.R. 2105, NIST Small Business Cybersecurity Act of 2017https://www.cbo.gov/publication/527462017-05-19T19:02:00Z2017-04-21T03:11:51ZLipinskiL00056317817923William2017-04-203TrueRep. Lipinski, Daniel [D-IL-3]ILDanielDL000563SMITH1075S00058381772017-04-2021TrueRep. Smith, Lamar [R-TX-21]TXLAMARRS000583ComstockC00110522732017-04-2010TrueRep. Comstock, Barbara [R-VA-10]VABarbaraRC001105Rosen2339R0006082017-04-203TrueRep. Rosen, Jacky [D-NV-3]NVJackyDR000608HultgrenH001059201579342017-04-2014TrueRep. Hultgren, Randy [R-IL-14]ILRandyRH001059Knight2228K0003872017-04-2025TrueRep. Knight, Stephen [R-CA-25]CAStephenRK000387LaHoodL00058522952017-04-2018TrueRep. LaHood, Darin [R-IL-18]ILDarinRL000585MarshallM0011982328W.2017-04-201TrueRep. Marshall, Roger W. [R-KS-1]KSRogerRM001198PoseyP000599191578872017-04-208TrueRep. Posey, Bill [R-FL-8]FLBillRP000599Tenney2344T0004782017-04-2522FalseRep. Tenney, Claudia [R-NY-22]NYClaudiaRT000478Dunn2315D000628P.2017-04-282FalseRep. Dunn, Neal P. [R-FL-2]FLNealRD000628LUCAS711L0004918111D.2017-05-013FalseRep. Lucas, Frank D. [R-OK-3]OKFRANKRL000491Bonamici83672092B0012782017-05-021FalseRep. Bonamici, Suzanne [D-OR-1]ORSuzanneDB001278McNerneyM001166183278162017-05-029FalseRep. McNerney, Jerry [D-CA-9]CAJerryDM001166ROYCE998R00048778452017-05-1139FalseRep. Royce, Edward R. [R-CA-39]CAEDRR000487Trott2250T000475A.2017-06-2111FalseRep. Trott, David A. [R-MI-11]MIDavidRT000475BaconB00129823372017-09-282FalseRep. Bacon, Don [R-NE-2]NEDonRB001298Became Public Law No: 115-236.2018-08-14770SNIST Small Business Cybersecurity ActHouseRelated billCRSRelated bill115SenateStandingCommerce, Science, and Transportation CommitteeReferred to2017-10-16T22:26:49Zsscm00HouseStandingScience, Space, and Technology CommitteeMarkup by2017-05-02T16:42:01ZReferred to2017-04-20T20:01:25Zhssy00text/xmlENPursuant to Title 17 Section 105 of the United States Code, this file is not subject to copyright protection and is in the public domain.Congressional Research Service, Library of CongressThis file contains bill summaries and statuses for federal legislation. A bill summary describes the most significant provisions of a piece of legislation and details the effects the legislative text may have on current law and federal programs. Bill summaries are authored by the Congressional Research Service (CRS) of the Library of Congress. As stated in Public Law 91-510 (2 USC 166 (d)(6)), one of the duties of CRS is "to prepare summaries and digests of bills and resolutions of a public general nature introduced in the Senate or House of Representatives". For more information, refer to the User Guide that accompanies this file.